CVE-2025-47329

Q: What is the severity of CVE-2025-47329?

CVE-2025-47329 has a CVSS score of 7.8 (HIGH). This vulnerability allows memory corruption when handling invalid inputs during application info setup. Attackers could potentially execute arbitrary code or cause denial of service. This affects systems using Qualcomm components with the vulnerable software.

7.8 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows memory corruption when handling invalid inputs during application info setup. Attackers could potentially execute arbitrary code or cause denial of service. This affects systems using Qualcomm components with the vulnerable software.

💻 Affected Systems

Products:

Qualcomm components and devices using affected software

Versions: Specific versions not detailed in reference

Operating Systems: Android and other embedded systems using Qualcomm chips

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with Qualcomm hardware/software components

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise

🟠

Likely Case

Application crash or denial of service

🟢

If Mitigated

Limited impact with proper memory protection mechanisms

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Memory corruption vulnerabilities often require specific conditions to exploit

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to September 2025 Qualcomm security bulletin

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm security bulletin for affected components 2. Apply vendor-provided patches 3. Reboot affected systems

🔧 Temporary Workarounds

Input validation enhancement

all

Implement additional input validation for application info handling

🧯 If You Can't Patch

Implement strict input validation controls
Use memory protection mechanisms like ASLR and DEP

🔍 How to Verify

Check if Vulnerable:

Check Qualcomm component versions against September 2025 security bulletin

Check Version:

Device/component specific - check manufacturer documentation

Verify Fix Applied:

Verify patch installation and component versions

📡 Detection & Monitoring

Log Indicators:

Application crashes
Memory access violations
Unexpected process termination

Network Indicators:

Unusual traffic patterns to/from affected systems

SIEM Query:

Search for application crashes or memory violation events related to Qualcomm components

📊 Metadata

CVE ID: CVE-2025-47329

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-763

EPSS Score: 0.01% exploit probability (2.4th percentile)

Published: September 24, 2025

Last Updated: September 25, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Fastconnect 7800 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qcm6690 Firmware by Qualcomm

Qcs6690 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8770p Firmware by Qualcomm

Sa8775p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Snapdragon 8 Gen 3 Mobile Platform Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Platform \"luna1\" Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Platform Firmware by Qualcomm

Snapdragon W5\+ Gen 1 Wearable Platform Firmware by Qualcomm

Sw5100 Firmware by Qualcomm

Sw5100p Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcd9390 Firmware by Qualcomm

Wcd9395 Firmware by Qualcomm

Wcn6450 Firmware by Qualcomm

Wcn6755 Firmware by Qualcomm

Wcn7861 Firmware by Qualcomm

Wcn7881 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8832 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

Wsa8840 Firmware by Qualcomm

Wsa8845 Firmware by Qualcomm

Wsa8845h Firmware by Qualcomm